Bug 1035254
Summary: | ssh client does not use primary ccache of a Kerberos ccache collection | ||
---|---|---|---|
Product: | Red Hat Enterprise Linux 6 | Reporter: | Sumit Bose <sbose> |
Component: | doc-Identity_Management_Guide | Assignee: | Deon Ballard <dlackey> |
Status: | CLOSED CURRENTRELEASE | QA Contact: | ecs-bugs |
Severity: | unspecified | Docs Contact: | |
Priority: | unspecified | ||
Version: | 6.6 | CC: | abokovoy, dlackey, mattias.ellert, mgrepl, mkosek, plautrba, pviktori, rcritten, ssorce, tmraz |
Target Milestone: | rc | Keywords: | Documentation |
Target Release: | --- | ||
Hardware: | Unspecified | ||
OS: | Unspecified | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | Bug Fix | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2014-07-29 20:25:35 UTC | Type: | Bug |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: | |||
Bug Depends On: | 1034958 | ||
Bug Blocks: |
Description
Sumit Bose
2013-11-27 11:42:51 UTC
I've done some dicussion with Simo and he pointed out that this is expected behavior for Kerberos credentials cache collections as described at http://k5wiki.kerberos.org/wiki/Projects/Client_principal_selection What we need to do is to convert this bug into documentation bug for Kerberos. At the very least, this change of the behavior due to introduction of the ccache collections should go to release notes (Fedora 20 and RHEL7). We'll track it at bug #1034958 for RHEL7. This bug can be used to track it for Fedora. wrong component. (In reply to Alexander Bokovoy from comment #1) > What we need to do is to convert this bug into documentation bug for > Kerberos. At the very least, this change of the behavior due to introduction > of the ccache collections should go to release notes (Fedora 20 and RHEL7). What documentation do you plan to extend? FreeIPA User Guide? Or Kerberos documentation? This issue does not seem FreeIPA-specific to me, so I rather ask. Three places: - Kerberos documentation, making clear how cache collections work. - FreeIPA guide, AD trusts chapter, making clear how ccache collections affect cross-realm operations. - Release notes of the product, pointing to Kerberos documentation changes. Makes sense. Feel free to clone this Bugzilla also to other components of the product. I see no response, moving to documentation component myself. Mass closure. These bugs were live in RHEL 6.5. |